CVE-2014-8509

Published: Oct 31, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

The lazy_bdecode function in BitTorrent bootstrap-dht (aka Bootstrap) allows remote attackers to execute arbitrary code via a crafted packet, which triggers an out-of-bounds read, related to "Improper Indexing."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.zerodayinitiative.com/advisories/ZDI-14-370/

x_refsource_MISC

https://github.com/bittorrent/bootstrap-dht/commit/bbc0b7191e3f48461ca6e5b1b34bdf4b3f1e79a9

x_refsource_CONFIRM

70812

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-8509

Description

Affected Products

References